What is a CRYPT.WIN32 virus?

I just did a clean install a couple of days ago and now this appears on my computer. I don't use a filesharing program like Kazaa and I don't download illegal stuff so I don't know where I get this stuff. Is this just a false warning?

BTW, you will need to disable your System Restore and then clear out the System Restore contents (right click on the hard drive in My Computer > Properties > Disk Cleanup. Then click the "More Options" section and do the System Restore Cleanout)

Very good point Geffy - I got off looking for that link and forgot all about it being in the SVI folder. May even have to physically go into the SVI Folder itself and manually delete anything that may be left over - I have seen some weird things left behind at times. BTW the SVI is a normally hidden folder - get1tg00d if you get stuck give us a yell back!

jroc - just for info - even if you have a virus in your restore point - NAV will not let you restore it back into your system. I can not speak for other AV's as I don;t use them and am not as familiar with them!

However, exactly as you say - it is always smarter to delete all your restore points as each point builds on the previous and as long as the virus is there - the next restore point will be built with it in it!

My antivirus software caught it and that warning came up. So I turned off my system restore and scanned my computer with NOD32 and an online virus scanner, before I restarted and after. Nothing was said to be infected. So either NOD32 caught it or both of them are missing it.

Right-click the System Volume Information folder in the root folder, and then click Sharing and Security

Click the Security tab

Click Add , and then type the name of the user to whom you want to give access to the folder. Choose the account location if appropriate (either local or from the domain). Typically, this is the account with which you are logged on. Click OK , and then click OK

Windows XP Professional using the NTFS File System on a Workgroup

Click Start , and then click My Computer

On the Tools menu, click Folder Options

On the View tab, click Show hidden files and folders

Clear the Hide protected operating system files (Recommended) check box. Click Yes when you are prompted to confirm the change

Clear the Use simple file sharing (Recommended) check box

Click OK

Right-click the System Volume Information folder in the root folder, and then click Sharing and Security

Click the Security tab

Click Add , and then type the name of the user to whom you want to give access to the folder. Typically, this is the account with which you are logged on. Click OK , and then click OK

Hopefully you'll see it and can run a virus scan on it!

Let me know if you get there as I have heard folks have problems with this. Maybe someone who is running Pro/NTFS could be of some help if it doesn't get you there!

I did Windows XP Professional using the NTFS File System on a Workgroup. I tried to scan it when it was just unhid and NOD32 said it was an invalid folder. Now I did it the right way and it scanned it but there was no files in the folder. Is there supposed to be no files in there?